Skip to content
Back to pull request #1

Bump actions/download-artifact from 3 to 4.1.7 in /.github/workflows #1

Sign in to view logs

Bump actions/download-artifact from 3 to 4.1.7 in /.github/workflows

Bump actions/download-artifact from 3 to 4.1.7 in /.github/workflows #1

Workflow file for this run

.github/workflows/rustification.yaml at c08f1eb
name: rs
on:
push:
branches: [ main, stable, oldstable ]
pull_request:
env:
CARGO_TERM_COLOR: always
jobs:
unittests:
runs-on: ubuntu-latest
defaults:
run:
working-directory: rust
strategy:
matrix:
toolchain:
- stable
- beta
- nightly
steps:
- uses: actions/checkout@v3
- run: sudo apt update && sudo apt-get install -y libpcap-dev
- run: rustup update ${{ matrix.toolchain }} && rustup default ${{ matrix.toolchain }}
- run: cargo test
clippy:
runs-on: ubuntu-latest
defaults:
run:
working-directory: rust
steps:
- uses: actions/checkout@v3
- run: rustup update stable && rustup default stable && rustup component add clippy
- run: cargo clippy -- -D warnings
audit:
runs-on: ubuntu-latest
defaults:
run:
working-directory: rust
steps:
- uses: actions/checkout@v3
- run: rustup update stable && rustup default stable
- run: cargo install cargo-audit
- run: cargo audit
typos:
runs-on: ubuntu-latest
defaults:
run:
working-directory: rust
steps:
- uses: actions/checkout@v3
- run: rustup update stable && rustup default stable
- run: cargo install typos-cli
- run: typos
formatting:
runs-on: ubuntu-latest
defaults:
run:
working-directory: rust
strategy:
matrix:
crates:
# we verify each dir separately to make it easier to verify formatting issues or even ignore
# crates we deem not important for checking (e.g. feed-verifier)
- nasl-syntax
- storage
- nasl-interpreter
- redis-storage
- json-storage
- nasl-cli
steps:
- uses: actions/checkout@v3
releases:
runs-on:
- ubuntu-20.04
defaults:
run:
working-directory: rust
steps:
# install rustup
- uses: actions/checkout@v3
- uses: actions/cache@v3
with:
path: |
~/.cargo/bin/
~/.cargo/registry/index/
~/.cargo/registry/cache/
~/.cargo/git/db/
rust/target/
key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }}
- run: sudo apt update && sudo apt-get install -y libpcap-dev
- run: rustup update stable && rustup default stable
- run: cargo build --lib --release
- run: cargo build --bins --release
- name: archive nasl-cli
uses: actions/upload-artifact@v3
with:
name: nasl-cli
path: rust/target/release/nasl-cli
retention-days: 1
- name: archive feed-verifier
uses: actions/upload-artifact@v3
with:
name: feed-verifier
path: rust/target/release/feed-verifier
retention-days: 1
verify-syntax:
runs-on: ubuntu-latest
needs: [releases]
steps:
- uses: actions/checkout@v3
- run: FEED_DIR="feed/" sh .github/prepare-feed.sh
- uses: actions/[email protected]
with:
name: nasl-cli
- name: verify syntax parsing
run: chmod a+x ./nasl-cli && ./nasl-cli syntax --quiet feed/
verify-feed-update:
runs-on: ubuntu-latest
needs: [releases]
container:
# maybe better to use builder, build openvas to have
# the version of this checkout rather than a dataed official one?
image: greenbone/openvas-scanner:unstable
options: --privileged
services:
redis:
image: redis
options: >-
--health-cmd "redis-cli ping"
--health-interval 10s
--health-timeout 5s
--health-retries 5
steps:
- uses: actions/checkout@v3
- run: apt-get update && apt-get install -y docker.io
- run: FEED_DIR="feed/" sh .github/prepare-feed.sh
- uses: actions/[email protected]
with:
name: nasl-cli
- uses: actions/[email protected]
with:
name: feed-verifier
- name: prepare setup
run: |
install -m 755 feed-verifier /usr/local/bin/
install -m 755 nasl-cli /usr/local/bin/
echo "db_address = tcp://redis:6379" >> /etc/openvas/openvas.conf
mv ./feed/* "$(openvas -s | grep plugins_folder | sed 's/plugins_folder = //')/"
- run: openvas -s
- run: feed-verifier || (cat /var/log/gvm/openvas.log && false)